|
302671
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
Stack-based buffer overflow in the OpenType Compact Font Format (aka OTF or CFF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Go…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0034
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302672
|
- |
|
microsoft
|
windows_xp
windows_server_2003
|
WordPad in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly parse fields in Word documents, which allows remote attackers to execute arbitrary code via a crafted .doc file, aka …
|
CWE-94
Code Injection
|
CVE-2011-0028
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302673
|
- |
|
php
|
php
|
The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/.
|
CWE-59
Link Following
|
CVE-2011-0441
|
2024-11-21 10:23 |
2011-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302674
|
- |
|
mahara
|
mahara
|
Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to hijack the authentication of arbitrary users for requests that delete bl…
|
CWE-352
Origin Validation Error
|
CVE-2011-0440
|
2024-11-21 10:23 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302675
|
- |
|
mahara
|
mahara
|
Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via the Pieforms select box.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0439
|
2024-11-21 10:23 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302676
|
- |
|
wireshark
|
wireshark
|
Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted captur…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0024
|
2024-11-21 10:23 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302677
|
- |
|
apple
|
mac_os_x
imageio
mac_os_x_server
|
Integer overflow in ImageIO in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image with JPEG …
|
CWE-189
Numeric Errors
|
CVE-2011-0194
|
2024-11-21 10:23 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302678
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple buffer overflows in Image RAW in Apple Mac OS X before 10.6.7 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Canon RAW image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0193
|
2024-11-21 10:23 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302679
|
- |
|
apple
|
mac_os_x
installer
mac_os_x_server
|
Install Helper in Installer in Apple Mac OS X before 10.6.7 does not properly process an unspecified URL, which might allow remote attackers to track user logins by logging network traffic from an ag…
|
CWE-20
Improper Input Validation
|
CVE-2011-0190
|
2024-11-21 10:23 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302680
|
- |
|
apple
|
mac_os_x
terminal
mac_os_x_server
|
The default configuration of Terminal in Apple Mac OS X 10.6 before 10.6.7 uses SSH protocol version 1 within the New Remote Connection dialog, which might make it easier for man-in-the-middle attack…
|
CWE-16
Configuration
|
CVE-2011-0189
|
2024-11-21 10:23 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
